- From: BoppreH via GitHub <sysbot+gh@w3.org>
- Date: Sun, 11 Dec 2022 01:20:31 +0000
- To: public-webauthn@w3.org
@dagnelies Sorry for the confusion, let me try to reword it. I think recoverable accounts should be the default, *from the moment the account is created*, and that default features should not reveal any private information like email or phone number. I also think that some of the most secure storage methods are naturally hard to access, like house safes, bank deposit boxes, and secret shares. By forcing users to access that storage to create each account (like printing a new QR code and putting in a safe), users will either: a. opt out of recoverable accounts; b. delay backing up their keys; c. or prefer riskier recovery mechanisms, like carrying the backup device with them. All of those options increase the chance of account loss or takeover. That's the dangerous part. And I agree with your sarcastic assessment that cloud sync is less desirable, which is why I like this proposal. -- GitHub Notification of comment by boppreh Please view or discuss this issue at https://github.com/w3c/webauthn/issues/931#issuecomment-1345427008 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Sunday, 11 December 2022 01:20:33 UTC